version: '3.0'

scanning-settings:
  max-depth: 6
  exclude: []

report:
  dependency-vulnerabilities:
    enabled: true
    auto-ignore-in-report:
      python:
        environment-results: false
        unpinned-requirements: false
      vulnerabilities:
        67136:
          reason: Affects documentation toolchain only
          expires: '2030-03-01'
        67599:
          reason: Does not affect SieveManager as such
          expires: '2030-03-01'
        67895:
          reason: Work-around in place
          expires: '2030-03-01'
        70612:
          reason: Affects documentation toolchain only
          expires: '2030-03-01'
        71064:
          reason: Affects documentation toolchain only
          expires: '2030-03-01'

fail-scan-with-exit-code:
  dependency-vulnerabilities:
    enabled: true
    fail-on-any-of:
      cvss-severity:
        - high
        - critical
        - medium
        - low
      exploitability:
        - high
        - critical
        - medium
        - low

security-updates:
  dependency-vulnerabilities:
    auto-security-updates-limit:
      - patch

